CVE-2026-56262
MEDIUM NVDCVSS Score
6.5
Severity
MEDIUM
Source
NVD
Published
Jun 24, 2026
Description
Crawl4AI before 0.8.7 contains an authentication bypass vulnerability in the monitor router endpoints that allows unauthenticated attackers to access destructive operations. Remote attackers can invoke the /monitor/actions/cleanup endpoint and manipulate monitoring state without authentication, causing service disruption.